Red Hot Cyber
Cybersecurity is about sharing.
Recognize the risk, combat it, share your experiences,
and encourage others to do better than you.
RHC Dark Lab : 26 June 2024 09:25
In recent years, the cybersecurity landscape has been dominated by the growing threat posed by ransomware groups.
Among these, LockBit has emerged as one of the most notorious and feared. However, a recent event has called their credibility into question: the announcement of a supposed double extortion against the Federal Reserve, which turned out to be a bluff.
LockBit is a cybercriminal group known for using ransomware as their main weapon. Active since 2019, this group specializes in targeted attacks against large companies and institutions. Their attack strategy is often based on the technique of “double extortion,” which involves not only encrypting data but also threatening to publish sensitive information if a ransom is not paid.
Iscriviti GRATIS ai WorkShop Hands-On della RHC Conference 2025 (Giovedì 8 maggio 2025)
Il giorno giovedì 8 maggio 2025 presso il teatro Italia di Roma (a due passi dalla stazione termini e dalla metro B di Piazza Bologna), si terranno i workshop "hands-on", creati per far avvicinare i ragazzi (o persone di qualsiasi età) alla sicurezza informatica e alla tecnologia. Questo anno i workshop saranno:
Supporta RHC attraverso:
Ti piacciono gli articoli di Red Hot Cyber? Non aspettare oltre, iscriviti alla newsletter settimanale per non perdere nessun articolo.
Recently, LockBit claimed to have conducted a double extortion attack against the Federal Reserve, the central financial institution of the United States. This announcement immediately attracted the attention of the media and cybersecurity experts, given the importance and sensitivity of the target.
Despite initial concerns, it was soon discovered that the announcement was a bluff. Investigations revealed that the onion links provided by LockBit did not lead to compromised data from the Federal Reserve but rather redirected to the website of the company GetEvolved, a completely unrelated entity.
This is not the first time LockBit has misidentified its victims. A famous case in Italy saw the ransomware group erroneously claim an attack against the Agenzia delle Entrate (Italian Revenue Agency). On that occasion too, the announcement turned out to be unfounded, demonstrating a certain superficiality in their operations and information verification.
The episode of LockBit’s bluff against the Federal Reserve, along with the previous misidentification error in Italy, highlights how the landscape of cyber threats is constantly evolving and how cybercriminals can use increasingly sophisticated and unpredictable tactics. It remains essential for organizations to maintain a high level of vigilance and adopt a robust cybersecurity strategy to protect their data and operations.
RHC Dark Lab